Re: Re: UEFI Secure Boot sprint report

To: tfheen@err.no
Cc: debian-project@lists.debian.org, henrich@iijmio-mail.jp
Subject: Re: Re: UEFI Secure Boot sprint report
From: Hideki Yamane <henrich@iijmio-mail.jp>
Date: Mon, 14 May 2018 22:05:49 +0900
Message-id: <[🔎] 20180514220549.e197a7e6bd51e3c9a1408157@iijmio-mail.jp>
In-reply-to: <[🔎] 87a7t999th.fsf@err.no>

Hi,

 Thanks, your explanation is really helpful.


> The signing service is a source package builder.

 It build source package but its source package is based on built binary package?
 As I understand, singing to binary is necessary step.

1. source package
2. -> upload to dak
3. -> passed to buildd
4. -> binary package built
5. -> singing service pull those
6. -> source package built
7. -> dak, again
8. -> buildd, again
9. -> dak passes those to repo 


 And in previous report 

> We're still missing (partially or completely):
> - generate a signing template for GRUB2
> - have DAK accept those generated source-only uploads

 This is 7th step in above, right? 


-- 
Regards,

 Hideki Yamane     henrich @ debian.org/iijmio-mail.jp

Reply to:

Follow-Ups:
- Re: Re: UEFI Secure Boot sprint report
  - From: Ben Hutchings <ben@decadent.org.uk>

References:
- Re: UEFI Secure Boot sprint report
  - From: Tollef Fog Heen <tfheen@err.no>

Prev by Date: Re: UEFI Secure Boot sprint report
Next by Date: Re: Re: UEFI Secure Boot sprint report
Previous by thread: Re: UEFI Secure Boot sprint report
Next by thread: Re: Re: UEFI Secure Boot sprint report
Index(es):
- Date
- Thread